Section: .. / UNIX / firewall /
| /// File Name: |
zorp-0.7.11.tar.gz |
Description:
|
Zorp is a new-generation modular proxy firewall suite to fine tune proxy decisions with its built in script language, fully analyze complex protocols (like SSH with several forwarded TCP connections), and utilize out of band authentication techniques (unlike common practices where proxy authentication had to be hacked into the protocol).
| | Author: | Balazs Scheidler | | Homepage: | http://www.balabit.hu/products/zorp/ | | Changes: | HTTP and core bugfixes, and the start of a feature freeze. | | File Size: | 372783 | | Last Modified: | Jan 9 19:43:50 2001 |
| MD5 Checksum: | 23fec4809b22ab683ff6a65a29e52918 |
|
| /// File Name: |
zorp-0.5.12.tar.gz |
Description:
|
Zorp is a new-generation modular proxy firewall suite to finetune proxy decisions with its built in script language, fully analyze complex protocols (like SSH with several forwarded TCP connections), and utilize outband authentication techniques (unlike common practices where proxy authentication had to be hacked into the protocol).
| | Author: | Balazs Scheidler | | Homepage: | http://www.balabit.hu/products/zorp/ | | Changes: | This release adds a new instance management script. Zorp is entering a feature freeze, heading towards the first stable version. | | File Size: | 364864 | | Last Modified: | Aug 15 18:38:30 2000 |
| MD5 Checksum: | b2d1cc7d8d49e44b0fd5b74b79a5d202 |
|
| /// File Name: |
zorp-0.5.11.tar.gz |
Description:
|
Zorp is a new-generation modular proxy firewall suite to finetune proxy decisions with its built in script language, fully analyze complex protocols (like SSH with several forwarded TCP connections), and utilize outband authentication techniques (unlike common practices where proxy authentication had to be hacked into the protocol).
| | Author: | Balazs Scheidler | | Homepage: | http://www.balabit.hu/products/zorp/ | | Changes: | Better enhancments. | | File Size: | 361265 | | Last Modified: | Aug 15 02:23:06 2000 |
| MD5 Checksum: | 4de982a765f5d27cef7a21f0b2d54bc7 |
|
| /// File Name: |
zorp-0.5.10.tar.gz |
Description:
|
Zorp is a new-generation modular proxy firewall suite to finetune proxy decisions with its built in script language, fully analyze complex protocols (like SSH with several forwarded TCP connections), and utilize outband authentication techniques (unlike common practices where proxy authentication had to be hacked into the protocol).
| | Author: | Balazs Scheidler | | Homepage: | http://www.balabit.hu/products/zorp/ | | Changes: | Bug fixes, enhancments. | | File Size: | 354478 | | Last Modified: | Aug 13 20:28:09 2000 |
| MD5 Checksum: | e63dda786b699a8e0bef4df6fc61cd6e |
|
| /// File Name: |
zorp-0.5.8.tar.gz |
Description:
|
Zorp is a new-generation modular proxy firewall suite to finetune proxy decisions with its built in script language, fully analyze complex protocols (like SSH with several forwarded TCP connections), and utilize outband authentication techniques (unlike common practices where proxy authentication had to be hacked into the protocol).
| | Author: | Balazs Scheidler | | Homepage: | http://www.balabit.hu/products/zorp/ | | File Size: | 349889 | | Last Modified: | Aug 8 19:59:27 2000 |
| MD5 Checksum: | 5f3bfccfba05fa1870dcf46ed7edd491 |
|
| /// File Name: |
nufw-0.8.6.tar.bz2 |
Description:
|
NuFW is a set of daemons that filters packets on a per-user basis. The gateway authorizes a packet depending on which remote user has sent it. On the client side, users have to run a client that sends authentication packets to the gateway. On the server side, the gateway associates user ids to packets, thus enabling the possibility to filter packets on a user basis. Furthermore, the server architecture is done to use external authentication source such as an LDAP server.
| | Author: | regit | | Homepage: | http://www.nufw.org/ | | Changes: | Two small bug fixes. | | File Size: | 323525 | | Last Modified: | Dec 11 20:48:33 2004 |
| MD5 Checksum: | dc720aebe2b3dd27943534320649ecd7 |
|
| /// File Name: |
nuface-1.0.7.tar.bz2 |
Description:
|
Nuface is a Web-based administration tool that generates Edenwall, NuFW, or simple Netfilter firewall rules. It features a high level abstraction on the security policy set by the administrator, and works internally on an XML data scheme. Its philosophy is to let you agglomerate subjects, resources, or protocols into meta-objects, and use those meta objects to generate ACLs, which are then interpreted as netfilter rules by Nupyf, the internal XML parser. This tool may easily be extended to support firewall implementations other than Netfilter.
| | Author: | Vincent Deffontaines | | Homepage: | http://www.inl.fr/Nuface.html | | Changes: | Added DNS resolution creation for subjects and ressources. Added research capabilities. Added support for IPy 0.5. Various other enhancements. | | File Size: | 250748 | | Last Modified: | Nov 2 10:29:15 2006 |
| MD5 Checksum: | 727d445660a3e5d5e23a50543911e391 |
|
| /// File Name: |
fwlogstat-1.0.tgz |
Description:
|
This is a perl script which interprets Checkpoint FW1 (V4.0) account logs, obtained from Master management console, or with the 'fw logexport' command. Can be used safely for standalone FW as well.
| | Author: | Rajeev Kumar | | Homepage: | http://www.geocities.com/SiliconValley/Bit/9363/ | | File Size: | 176965 | | Last Modified: | Dec 8 19:26:27 1999 |
| MD5 Checksum: | 1dc94f8b3f14df345ee0ed7031d5493a |
|
| /// File Name: |
nuface-1.0.5.tar.gz |
Description:
|
Nuface is a Web-based administration tool that generates Edenwall, NuFW, or simple Netfilter firewall rules. It features a high level abstraction on the security policy set by the administrator, and works internally on an XML data scheme. Its philosophy is to let you agglomerate subjects, resources, or protocols into meta-objects, and use those meta objects to generate ACLs, which are then interpreted as netfilter rules by Nupyf, the internal XML parser. This tool may easily be extended to support firewall implementations other than Netfilter.
| | Author: | Vincent Deffontaines | | Homepage: | http://www.inl.fr/Nuface.html | | Changes: | Various minor updates. | | File Size: | 171856 | | Last Modified: | Jun 15 04:32:20 2006 |
| MD5 Checksum: | 8194b8e306a39b6ac951e1da2c086138 |
|
| /// File Name: |
nuface-1.0.3.tar.gz |
Description:
|
Nuface is a Web-based administration tool that generates Edenwall, NuFW, or simple Netfilter firewall rules. It features a high level abstraction on the security policy set by the administrator, and works internally on an XML data scheme. Its philosophy is to let you agglomerate subjects, resources, or protocols into meta-objects, and use those meta objects to generate ACLs, which are then interpreted as netfilter rules by Nupyf, the internal XML parser. This tool may easily be extended to support firewall implementations other than Netfilter.
| | Author: | Vincent Deffontaines | | Homepage: | http://www.inl.fr/Nuface.html | | Changes: | Added a real groups interface. | | File Size: | 166164 | | Last Modified: | Apr 29 05:35:20 2006 |
| MD5 Checksum: | 1898b8f53209b006c2474ed173978f6f |
|
| /// File Name: |
nuface-1.0.4.tar.gz |
Description:
|
Nuface is a Web-based administration tool that generates Edenwall, NuFW, or simple Netfilter firewall rules. It features a high level abstraction on the security policy set by the administrator, and works internally on an XML data scheme. Its philosophy is to let you agglomerate subjects, resources, or protocols into meta-objects, and use those meta objects to generate ACLs, which are then interpreted as netfilter rules by Nupyf, the internal XML parser. This tool may easily be extended to support firewall implementations other than Netfilter.
| | Author: | Vincent Deffontaines | | Homepage: | http://www.inl.fr/Nuface.html | | Changes: | Fixed handling on ICMP types in the protocols page. Floating elements menu can now be replied. Added strict checking on all form input. | | File Size: | 165260 | | Last Modified: | May 9 17:21:10 2006 |
| MD5 Checksum: | 05f49844c6f4d59361238a1d7b99fa47 |
|
| /// File Name: |
reptor-1.00.tar.gz |
Description:
|
Reptor is a utility designed to aid the analysis of Axent/Raptor firewall logfiles which generates HTML reports which can include traffic summaries and alert messages that are based on highly customizable conditions. It has built in support for logfile retrieval, FTP, and SMTP allow it to be easily automated.
| | Author: | Alex Howansky | | Homepage: | http://www.wankwood.com/reptor/ | | Changes: | Uses OOBA (out of band communication), DNS caching, a workaround for Raptor's "SMTP huge received bytes value" bug, new HTML themes, and several bugfixes. | | File Size: | 126984 | | Last Modified: | Oct 10 23:02:55 2001 |
| MD5 Checksum: | cca36a50c08888b4ea31b242d8685902 |
|
| /// File Name: |
reptor-0.98.tar.gz |
Description:
|
Reptor is a utility designed to aid the analysis of Axent/Raptor firewall logfiles which generates HTML reports which can include traffic summaries and alert messages that are based on highly customizable conditions. It has built in support for logfile retrieval, FTP, and SMTP allow it to be easily automated.
| | Author: | Alex Howansky | | Homepage: | http://www.wankwood.com/reptor/ | | Changes: | Usability enhancments, six new detail sections, and bug fixes. | | File Size: | 113818 | | Last Modified: | Jun 15 19:36:38 2000 |
| MD5 Checksum: | 6b67cefd68ae95de66f0260cc017d04b |
|
| /// File Name: |
reptor-0.97.tar.gz |
Description:
|
Reptor is a utility designed to aid the analysis of Axent/Raptor firewall logfiles. It generates HTML reports which can include traffic summaries and alert messages that are based on highly customizable conditions. It has built in support for logfile retrieval, FTP, and SMTP allow it to be easily automated.
| | Author: | Alex Howansky | | Homepage: | http://www.wankwood.com/reptor/ | | File Size: | 104057 | | Last Modified: | Apr 9 19:20:45 2000 |
| MD5 Checksum: | b136b980847e7769f88d7a8fab91d5c6 |
|
| /// File Name: |
nufw-0.8.5.tar.gz |
Description:
|
NuFW is a set of daemons that filters packets on a per-user basis. The gateway authorizes a packet depending on which remote user has sent it. On the client side, users have to run a client that sends authentication packets to the gateway. On the server side, the gateway associates user ids to packets, thus enabling the possibility to filter packets on a user basis. Furthermore, the server architecture is done to use external authentication source such as an LDAP server.
| | Author: | regit | | Homepage: | http://www.nufw.org/ | | Changes: | Fixes an SSL related bug. Minor updates. | | File Size: | 104036 | | Last Modified: | Sep 10 01:53:05 2004 |
| MD5 Checksum: | a777a1d9b82a0d7b6cc8805e992ddb20 |
|
| /// File Name: |
nuface-0.9.tar.gz |
Description:
|
Nuface is a Web-based administration tool that generates Edenwall, NuFW, or simple Netfilter firewall rules. It features a high level abstraction on the security policy set by the administrator, and works internally on an XML data scheme. Its philosophy is to let you agglomerate subjects, resources, or protocols into meta-objects, and use those meta objects to generate ACLs, which are then interpreted as netfilter rules by Nupyf, the internal XML parser. This tool may easily be extended to support firewall implementations other than Netfilter.
| | Author: | Vincent Deffontaines | | Homepage: | http://www.inl.fr/Nuface.html | | File Size: | 103683 | | Last Modified: | Aug 5 04:14:46 2005 |
| MD5 Checksum: | 0d52ce526eaa447466c33cbac689dd9d |
|
| /// File Name: |
kopkop_0.1.0-1.tar.gz |
Description:
|
kopkop is a daemon that listens for encrypted, signed, and fully random-looking command packets. Only the fields essential for the packets' travel trough the Internet are filled with sane data. Upon reception and after a preset timeout, the daemon executes user-defined commands. This can be used to open firewalls, so you can reduce your system's attack surface by hiding certain services until you need to use them. The included kopkop client creates and sends the encrypted packets. The communication is strictly unidirectional and quite minimal between the client and the server. Replay attacks are forestalled by storing and comparing monotonically increasing packet IDs on both sides.
| | Author: | mcree | | Homepage: | http://kopkop.sourceforge.net/ | | File Size: | 101129 | | Last Modified: | Apr 28 01:55:06 2004 |
| MD5 Checksum: | 8b2ac0ae680bba4a7e01160c80adfd5e |
|
| /// File Name: |
pfpro-0.1.1.tar.gz |
Description:
|
PfPro is a Java based GUI for creating OpenBSD PF firewall configurations.
| | Author: | acidos | | Homepage: | http://pfpro.sf.net/ | | Changes: | Minor changes. | | File Size: | 76911 | | Last Modified: | Dec 12 14:34:58 2004 |
| MD5 Checksum: | 203ed8c254c7b182ec2529bb9c32ef6d |
|
| /// File Name: |
pfpro-0.1.0.tar.gz |
Description:
|
PfPro is a Java based GUI for creating OpenBSD PF firewall configurations.
| | Author: | acidos | | Homepage: | http://pfpro.sf.net/ | | Changes: | Updated the XML format, added NAT Support, code cleanup, and more. | | File Size: | 75175 | | Last Modified: | Aug 26 14:54:40 2004 |
| MD5 Checksum: | 213728377e938b0ed7abbdff56d7f6d0 |
|
| /// File Name: |
Firewall-HOWTO |
Description:
|
Firewall-HOWTO
| | File Size: | 54279 | | Last Modified: | Aug 16 20:06:49 1999 |
| MD5 Checksum: | 147066e7e6fe73c1ae4810326c1826af |
|
| /// File Name: |
ftester-1.0.tar.gz |
Description:
|
The Firewall Tester consists of two perl scripts, the client part (ftest) and the listening sniffer (ftestd). The client injects custom marked packets, while the sniffer listens for them. The comparison of the script's log files permit the detection of filtered packets and consequently filtering rules if the two scripts are ran on different sides of a firewall. An IDS (Intrusion Detection System) testing feature is also available and snort rule definition file can parsed instead of the standard configuration syntax, ftest can also use common IDS evasion techniques. Stateful inspection firewall and IDS can be tested with the 'connection spoofing' option. Requires: Net::RawIP, Net::PcapUtils, NetPacket.
| | Author: | Andrea Barisani | | Changes: | Various enhancements. | | File Size: | 30821 | | Last Modified: | Feb 14 00:31:17 2006 |
| MD5 Checksum: | 628bd38f2d9988b9276be6d3f70ce75c |
|
| /// File Name: |
ftester-0.9.tar.gz |
Description:
|
The Firewall Tester consists of two perl scripts, the client part (ftest) and the listening sniffer (ftestd). The client injects custom marked packets, while the sniffer listens for them. The comparison of the script's log files permit the detection of filtered packets and consequently filtering rules if the two scripts are ran on different sides of a firewall. An IDS (Intrusion Detection System) testing feature is also available and snort rule definition file can parsed instead of the standard configuration syntax, ftest can also use common IDS evasion techniques. Stateful inspection firewall and IDS can be tested with the 'connection spoofing' option. Requires: Net::RawIP, Net::PcapUtils, NetPacket.
| | Author: | Andrea Barisani | | Changes: | Added support for CIDR notation, added pseudo fragments reassembly in ftestd, minor code rewrites and cleanup. | | File Size: | 30672 | | Last Modified: | Jun 21 19:46:41 2003 |
| MD5 Checksum: | b614622c17090316bbb251a133055670 |
|
| /// File Name: |
falcon-0.1.5-1.tgz |
Description:
|
The Falcon Project (Free Application-Level CONnection kit) is an open firewall project with the intention of developing a free, secure and OS-independent firewall system. Falcon consists of three major modules: Falcons's own proxies (written in Perl); 3rd-party proxies (squid / qmail / BIND8), each modified for chroot environment; and general concepts for OS hardening, chrooting etc.
| | Author: | Falcon Open Group | | Homepage: | http://falcon.naw.de/ | | Changes: | Comfortable start-/stop-scripts, and a fix for the download problem. | | File Size: | 30085 | | Last Modified: | Feb 1 16:11:40 2000 |
| MD5 Checksum: | 90c68c0c2119a00bbc6f476c654292ab |
|
| /// File Name: |
ftester-0.8.tar.gz |
Description:
|
The Firewall Tester consists of two perl scripts, the client part (ftest) and the listening sniffer (ftestd). The client injects custom marked packets, while the sniffer listens for them. The comparison of the script's log files permit the detection of filtered packets and consequently filtering rules if the two scripts are ran on different sides of a firewall. An IDS (Intrusion Detection System) testing feature is also available and snort rule definition file can parsed instead of the standard configuration syntax, ftest can also use common IDS evasion techniques. Stateful inspection firewall and IDS can be tested with the 'connection spoofing' option. Requires: Net::RawIP, Net::PcapUtils, NetPacket.
| | Author: | Andrea Barisani | | Changes: | Compatible with Perl 5.8.0, documentation updates, and bug fixes. | | File Size: | 29521 | | Last Modified: | Jan 17 03:19:57 2003 |
| MD5 Checksum: | fffe605984da88178e68fe079f02836b |
|
| /// File Name: |
rc.walloffire-v0.1BETA.txt |
Description:
|
Netric Firewall Package - iptables release. This tool enables administrators to easily implement a solid firewall for iptables.
| | Homepage: | http://www.netric.org | | File Size: | 29363 | | Last Modified: | Sep 24 00:31:21 2002 |
| MD5 Checksum: | 7542b425d0c3a323bc0d92f82dfde9b3 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
